Language Selection

English French German Italian Portuguese Spanish

October 2015

KDBUS Is Being Removed From Fedora, Could Be A While Before Being Mainlined

Filed under
Red Hat

In somewhat of an embarrassing move and indicating that KDBUS likely won't be proposed for Linux 4.4, this in-kernel IPC mechanism is being temporarily stripped out of Fedora.

Fedora developers added KDBUS to their Rawhide kernel this summer at the request of the systemd developers involved in KDBUS development. With systemd 221, the upstream developers also encouraged Linux distributions to begin shipping KDBUS even though it wasn't part of the mainline kernel. This turned out to be a mistake.

Read more

Security Leftovers

Filed under
Security
  • Intel x86 considered harmful (new paper)

    Back in summer I have read a new book published by one of the core Intel architects about the Management Engine (ME). I didn't quite like what I read there. In fact I even found this a bit depressing, even though Intel ME wasn't particular news to me as we, at the ITL, have already studied this topic quite in-depth, so to say, back in 2008... But, as you can see in the linked article, I believed we could use VT-d to protect the host OS from the potentially malicious ME-based rootkits (which we demonstrated back then).

  • MySQL Windows servers come under malware attack

    Researchers at Symantec say they have discovered a form of malware that attacks MySQL on Windows servers, using them to launch distributed denial of service attacks.

  • Sustaining Digital Certificate Security

    Following our notification, Symantec published a report in response to our inquiries and disclosed that 23 test certificates had been issued without the domain owner’s knowledge covering five organizations, including Google and Opera.

    However, we were still able to find several more questionable certificates using only the Certificate Transparency logs and a few minutes of work. We shared these results with other root store operators on October 6th, to allow them to independently assess and verify our research.

    Symantec performed another audit and, on October 12th, announced that they had found an additional 164 certificates over 76 domains and 2,458 certificates issued for domains that were never registered.

  • British Gas leak sees 2,400 customer passwords posted online

    COOKING AND HEATING ENABLER British Gas has confessed to a data loss that has seen the details of many of its customers released online.

    British Gas has written to affected customers to tell them that, while it may not have been hacked, the effect is the same. It has somehow managed to leak information that has found its way onto the internet and in the direction of ne-er-do-wells.

    Reports have it that 2,399 email addresses and passwords have been leaked online. A package of emails and passwords is a pretty good haul for an online exploiter, particularly if the same details are used for access on other sites and services.

GNOME 3.19.1 released

Filed under
GNOME

Hi GNOMErs!

The development of the next GNOME release, 3.20, has started, and the
first development release, 3.19.1, is now available.

To compile GNOME 3.19.1, you can use the jhbuild [1] modulesets [2]
(which use the exact tarball versions from the official release).

[1] http://library.gnome.org/devel/jhbuild/
[2] http://download.gnome.org/teams/releng/3.19.1/

Read more

Fedora 23 a No-Go, Final Not Delayed Yet

Filed under
Red Hat
-s

At tonight's Fedora 23 Final Go/No-Go meeting number two, it was decided that several proposed blockers wouldn't delay the release, but one other issue did. Christian Schaller wrote of some of new and improved features coming in Fedora 23 and Matt Asay today said, "Red Hat is boring." The Ubuntu 16.04 release schedule was posted and Sam Varghese reported today on Linux distribution PrisonPC.

Read more

Linux Devices

Filed under
Linux

Leftovers: Ubuntu

Filed under
Ubuntu

Linux Competition and Kernel

Filed under
Linux
  • Winners Announced! Linux Pros Show Off Knowledge in #WorldWithoutLinux Contest But One Clue Stumps Them All

    If you’ve ever wondered what a World Without Linux would mean to you, you know it’s a ridiculous notion. That’s what the current World Without Linux video series attempts to illustrate in a fun and entertaining way that also gives gratitude to the thousands of developers and companies that support the operating system.

    Included in the series are hidden easter eggs that require some level of Linux expertise to identify; though, if you’re a newbie, the clues and easter eggs are done in such a way that you can also surface the answers, putting you in the spotlight among Linux aficionados. It’s also a chance to win fun prizes – t-shirts, tattoos, pins – but perhaps most importantly, street cred among fellow Linux history buffs.

  • AMD Published Two Zen-Related Patches For The Linux Kernel

    We've seen AMD already pushing open-source compiler patches for Zen and it seems they are ready to begin pushing Linux kernel changes too for their next-generation CPU architecture.

    Aravind Gopalakrishnan of AMD posted two patches for Family 17h, a.k.a. Zen. The new feature patches can be found on the kernel mailing list until being mainlined. The patches are adding the CLZERO instruction so that it can be exposed via /proc/cpuinfo and adding the Scalable MCA cpuid bit.

Where you can get a Linux laptop for super cheap this Saturday

Filed under
GNU
Linux

Nonprofit Technology Resources wants to save a pile of laptops from the scrapyard.

The digital access nonprofit is leaving its headquarters near the Community College of Philadelphia because it’s too big for their needs, and they can’t bring all the hundreds of donated laptops they’ve collected over the years, said president Ed Cummings, who also goes by “bernieS” in hacker circles. So the group is having a “Linux Laptop Pizza Party,” where they’ll be selling the laptops for as cheap as $20 and helping people install Linux on them. NTR is also looking for volunteers to help get laptops ready to use and donate.

“Lots of Linux hackers will be on hand to answer questions and help participants choose an older laptop and a Linux distro that will run well on it,” Cummings wrote in an email.

Read more

Samsung looking to merge Tizen with IoTivity platform, says report

Filed under
Linux

Samsung Electronics is planning to merge its in-house developed operating system Tizen with its Internet of Things (IoT) platform IoTivity, looking to enhance the platform's competitiveness, according to a Korean-language ChosunBiz report.

Read more

Also: Linux-based Samsung Z3 smartphone launches in India

More in Tux Machines

Security: Patches, Firefox and Webmin

  • Security updates for Thursday

    Security updates have been issued by Fedora (oniguruma and thunderbird-enigmail), openSUSE (chromium, ghostscript, and slurm), Oracle (kernel), Red Hat (kpatch-patch), Slackware (bind), SUSE (python-ecdsa), and Ubuntu (bind9 and mariadb).

  • Princesses make terrible passwords

    When the Disney+ streaming service rolled out, millions of people flocked to set up accounts. And within a week, thousands of poor unfortunate souls reported that their Disney passwords were hacked. According to media reports, some Disney+ account holders have lost their account access while hackers have sold their logins online. [...] When setting up accounts, Lockwise can help you select something complex and unique that you never would have thought of on your own. Then you can save that tricky password straight into your browser and use it directly from the app, secured behind a master password or fingerprint login protected in the most delightful way for when you need it. We can’t guarantee that various services and platforms you use won’t ever be compromised, but we can help you create complex unique passwords to minimize your exposure should it occur. And with Firefox Monitor, we can alert you when breaches happen.

  • Two ways Firefox protects your holiday shopping

    We’re entering another holiday shopping season, and while you’re browsing around on the internet looking for thoughtful presents for friends and loved ones, it’s also a good time to give yourself the gift of privacy. Your research and shopping behavior has the potential to be a huge gift to the advertisers collecting data about your habits. If you’re not using Firefox, every weird search for every weird gift could get packaged up in a marketplace where companies and advertisers will be buying, selling and trading this data about you in their own holiday shopping bonanza. Using Firefox is the preventative measure you need during the holiday season (but really anytime you’re shopping online) to protect you from two potential problems...

  • Linux Webmin Servers Under Attack by Roboto P2P Botnet

    A newly-discovered peer-to-peer (P2P) botnet has been found targeting a remote code execution vulnerability in Linux Webmin servers. Vulnerable Linux Webmin servers are under active attack by a newly-discovered peer-to-peer (P2P) botnet, dubbed Roboto by researchers.

KDE/GNOME Events: Linux Applications Summit and KDE e.V. board meeting in Berlin

  • Some GNOME / LAS / Wikimedia love

    About LAS 2019: Linux App Summit Linux App Summit 2019 And about the previous LAS format: Libre Application Summit Libre Application Summit 2018

  • Linux Applications Summit 2019 activity

    And finally, I helped the local team with some minor tasks like moving items and so. I want to congratulate all the organization team and specially the local team for the results and the love they have put in the event. The results have been excellent and this is another strong step for the interweaved relations between opensource development communities sharing very near goals. My participation at the conference has been sponsored by the GNOME Foundation. Thanks very much for their support.

  • KDE e.V. board meeting in Berlin

    Just back from Barcelona – with a brief pause at home for some mathematical cabaret, a board meeting for my local badminton club, music lessons and an afternoon of volunteering at a local charity second-hand shop – and I’m off to Berlin again. The train is not particularly fast, but it’s a relatively predictable six hours from here to HBf and I do have some “home” feeling in Berlin. At least I have a favorite chocolate place. In Berlin we’re combining a KDE e.V. board meeting with the KDE Frameworks 6 sprint. Both events are basically “planning for the future” on an organizational and technical level.

Yocto-based Torizon distro adds OTA updater

Toradex has released an experimental version of an OTA updater for its new Torizon embedded Linux distribution. Torizon OTA offers fault-tolerant features and supports web-based remote management including grouping of devices into fleets. Read more

Growth of Kubernetes

  • Just how popular is Kubernetes?

    In its study of usage data from thousands of companies and more than 1.5 billion containers, the company found "roughly 45% of Datadog customers running containers use Kubernetes, whether in self-managed clusters or through a cloud service." Not bad for a technology that's just over five years old. What's more telling though is that almost half of all Datadog container users have already turned to Kubernetes. It's Kubernetes' growth rate that really tells the story. In the last year, Kubernetes' numbers of users grew by 10%. In the meantime, other container orchestration programs, such as Marathon and Docker swarm mode, have simply not caught fire. Indeed, their parent companies, D2iQ, formerly Mesosphere, and Docker both started offering Kubernetes to their customers. Need more be said? Datadog also found that Kubernetes is very popular on the public cloud. In particular, managed Kubernetes services such as Google Kubernetes Engine (GKE) dominates the Google Cloud Platform (GCP). Since Kubernetes ancestry goes back to Google that comes as no surprise.

  • Rancher CEO on k3s: Kubernetes is the new Linux; you run it everywhere

    Once, Kubernetes was just some geeky cloud-native project for orchestrating containers (a virtualized method for running distributed applications). Isn’t it funny how it’s worked its way into practically every tech conversation in just a few years? In fact, thanks to technologies that shrink and simplify it, Kubernetes is about to find its way into even more use cases. With the technology and its uses expanding so rapidly, how do we even define it anymore? Sheng Liang (pictured), co-founder and chief executive officer of Rancher Labs Inc., has an idea: “Kubernetes is the new Linux, and you run it everywhere.” Cloud, on-premises data center, bare metal, internet of things edge, Raspberry Pi, surveillance camera? Check. The developer ecosystem is invading more and more spaces through tweaks that make Kubernetes easier than ever to deploy.